Search

Find a vulnerability

Search criteria

    7 vulnerabilities found for SoMachine HVAC by Schneider Electric

    VAR-201706-0651

    Vulnerability from variot - Updated: 2025-04-20 23:30

    A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to the improper loading of a DLL. SoMachine HVAC is a PLC programming software

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201706-0651",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "somachine",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "model": "somachine",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": "hvac 2.1.0"
          },
          {
            "model": "electric somachine hvac",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "2.1.0"
          },
          {
            "model": "somachine hvac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.1"
          },
          {
            "model": "somachine hvac",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.2"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "somachine",
            "version": "2.1.0"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "BID",
            "id": "98446"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:schneider_electric:somachine",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Himanshu Mehta",
        "sources": [
          {
            "db": "BID",
            "id": "98446"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2017-7966",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2017-7966",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CNVD-2017-10359",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.9 [IVD]"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-116169",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.8,
                "id": "CVE-2017-7966",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.8,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2017-7966",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2017-7966",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2017-10359",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201704-902",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "IVD",
                "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317",
                "trust": 0.2,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-116169",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A DLL Hijacking vulnerability in the programming software in Schneider Electric\u0027s SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to the improper loading of a DLL. SoMachine HVAC is a PLC programming software",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "BID",
            "id": "98446"
          },
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          }
        ],
        "trust": 2.7
      },
      "exploit_availability": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-116169",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          }
        ]
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2017-7966",
            "trust": 3.6
          },
          {
            "db": "BID",
            "id": "98446",
            "trust": 2.6
          },
          {
            "db": "SCHNEIDER",
            "id": "SEVD-2017-125-02",
            "trust": 2.0
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902",
            "trust": 0.9
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-17-136-02",
            "trust": 0.3
          },
          {
            "db": "IVD",
            "id": "D24E5BF7-8F13-41CD-9FF1-9B9F830FD317",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "db": "BID",
            "id": "98446"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "id": "VAR-201706-0651",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          }
        ],
        "trust": 1.9
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          }
        ]
      },
      "last_update_date": "2025-04-20T23:30:59.713000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "SEVD-2017-125-02",
            "trust": 0.8,
            "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-125-02/"
          },
          {
            "title": "Schneider Electric SoMachine HVAC patch for arbitrary code execution vulnerabilities",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/95695"
          },
          {
            "title": "Schneider Electric SoMachine HVAC Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99739"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-427",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-284",
            "trust": 0.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.3,
            "url": "http://www.securityfocus.com/bid/98446"
          },
          {
            "trust": 2.0,
            "url": "http://www.schneider-electric.com/en/download/document/sevd-2017-125-02/"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-7966"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7966"
          },
          {
            "trust": 0.3,
            "url": "http://blog.rapid7.com/?p=5325"
          },
          {
            "trust": 0.3,
            "url": "http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html"
          },
          {
            "trust": 0.3,
            "url": "http://blogs.technet.com/b/srd/archive/2010/08/23/more-information-about-dll-preloading-remote-attack-vector.aspx"
          },
          {
            "trust": 0.3,
            "url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
          },
          {
            "trust": 0.3,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-136-02"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "db": "BID",
            "id": "98446"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "db": "BID",
            "id": "98446"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-06-20T00:00:00",
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "date": "2017-06-20T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "date": "2017-06-07T00:00:00",
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "date": "2017-05-05T00:00:00",
            "db": "BID",
            "id": "98446"
          },
          {
            "date": "2017-07-05T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "date": "2017-04-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "date": "2017-06-07T19:29:00.227000",
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-06-20T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          },
          {
            "date": "2019-10-03T00:00:00",
            "db": "VULHUB",
            "id": "VHN-116169"
          },
          {
            "date": "2017-05-23T16:26:00",
            "db": "BID",
            "id": "98446"
          },
          {
            "date": "2017-07-05T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2017-004715"
          },
          {
            "date": "2019-10-23T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          },
          {
            "date": "2025-04-20T01:37:25.860000",
            "db": "NVD",
            "id": "CVE-2017-7966"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Schneider Electric SoMachine HVAC Arbitrary code execution vulnerability",
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10359"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Code problem",
        "sources": [
          {
            "db": "IVD",
            "id": "d24e5bf7-8f13-41cd-9ff1-9b9f830fd317"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-902"
          }
        ],
        "trust": 0.8
      }
    }

    VAR-201706-0650

    Vulnerability from variot - Updated: 2025-04-20 23:30

    A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller. SoMachine HVAC is a PLC programming software. This vulnerability stems from a security vulnerability in the call to AlTracePrint.exe, which can be exploited by an attacker to cause a buffer overflow. Schneider Electric SoMachine HVAC is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successful exploits may allow attackers to execute arbitrary code in context of the application. Failed exploits may result in denial-of-service conditions. Schneider Electric SoMachine HVAC 2.1.0 is vulnerable; other versions may also be affected

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201706-0650",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "somachine hvac",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "model": "somachine",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": "v2.1.0"
          },
          {
            "model": "electric somachine hvac",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "2.1.0"
          },
          {
            "model": "somachine",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "model": "somachine hvac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.1"
          },
          {
            "model": "somachine hvac",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.2"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "somachine hvac",
            "version": "2.1.0"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:schneider_electric:somachine",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Zhou Yu",
        "sources": [
          {
            "db": "BID",
            "id": "98449"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2017-7965",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.6,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "CVE-2017-7965",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.6,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "CNVD-2017-10357",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.6,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.9 [IVD]"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.6,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "VHN-116168",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:L/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.3,
                "id": "CVE-2017-7965",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.3,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2017-7965",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "Low",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2017-7965",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2017-7965",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2017-10357",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201704-903",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "IVD",
                "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1",
                "trust": 0.2,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-116168",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric\u0027s SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller. SoMachine HVAC is a PLC programming software. This vulnerability stems from a security vulnerability in the call to AlTracePrint.exe, which can be exploited by an attacker to cause a buffer overflow. Schneider Electric SoMachine HVAC is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. \nSuccessful exploits may allow attackers to execute arbitrary code in context of the application. Failed exploits may result in denial-of-service conditions. \nSchneider Electric SoMachine HVAC 2.1.0 is vulnerable; other versions may also be affected",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2017-7965",
            "trust": 3.6
          },
          {
            "db": "BID",
            "id": "98449",
            "trust": 2.6
          },
          {
            "db": "SCHNEIDER",
            "id": "SEVD-2017-125-01",
            "trust": 2.0
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903",
            "trust": 0.9
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-17-136-02",
            "trust": 0.3
          },
          {
            "db": "IVD",
            "id": "11B1075A-684E-41EC-9AA9-C1B9110102D1",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "id": "VAR-201706-0650",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          }
        ],
        "trust": 1.9
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          }
        ]
      },
      "last_update_date": "2025-04-20T23:30:59.674000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "SEVD-2017-125-01",
            "trust": 0.8,
            "url": "http://www.schneider-electric.com/en/download/document/SEVD-2017-125-01/"
          },
          {
            "title": "Schneider Electric SoMachine HVAC Stack Buffer Overflow Vulnerability Patch",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/95693"
          },
          {
            "title": "Schneider Electric Modicon M171/M172 Controller SoMachine HVAC Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100390"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.3,
            "url": "http://www.securityfocus.com/bid/98449"
          },
          {
            "trust": 2.0,
            "url": "http://www.schneider-electric.com/en/download/document/sevd-2017-125-01/"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-7965"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7965"
          },
          {
            "trust": 0.3,
            "url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
          },
          {
            "trust": 0.3,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-136-02"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-06-20T00:00:00",
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "date": "2017-06-20T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "date": "2017-06-07T00:00:00",
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "date": "2017-05-05T00:00:00",
            "db": "BID",
            "id": "98449"
          },
          {
            "date": "2017-07-06T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "date": "2017-04-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "date": "2017-06-07T19:29:00.197000",
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-06-20T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          },
          {
            "date": "2019-10-03T00:00:00",
            "db": "VULHUB",
            "id": "VHN-116168"
          },
          {
            "date": "2017-05-23T16:26:00",
            "db": "BID",
            "id": "98449"
          },
          {
            "date": "2017-07-06T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2017-004756"
          },
          {
            "date": "2021-08-24T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          },
          {
            "date": "2025-04-20T01:37:25.860000",
            "db": "NVD",
            "id": "CVE-2017-7965"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "BID",
            "id": "98449"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Schneider Electric SoMachine HVAC Stack Buffer Overflow Vulnerability",
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-10357"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer error",
        "sources": [
          {
            "db": "IVD",
            "id": "11b1075a-684e-41ec-9aa9-c1b9110102d1"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201704-903"
          }
        ],
        "trust": 0.8
      }
    }

    VAR-201607-0386

    Vulnerability from variot - Updated: 2025-04-13 23:22

    An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the SetDataIntf method of the AxEditGrid control. The control has an untrusted pointer dereference vulnerability because it blindly calls an attacker-supplied memory address. A remote attacker can leverage this vulnerability to execute arbitrary code under the context of the process. Schneider Electric SoMachine HVAC Programming Software for M171 / M172 Controllers is a set of M171 / M172 controller-specific programming software from Schneider Electric (France). Failed attacks will likely cause denial-of-service conditions

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "somachine hvac",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "modicon m171 logic controller",
            "scope": null,
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "_id": null,
            "model": "modicon m172 logic controller",
            "scope": null,
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "_id": null,
            "model": "somachine hvac programming software",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "somachine hvac",
            "scope": null,
            "trust": 0.7,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "_id": null,
            "model": "electric somachine hvac programming software for m171/m172 controllers",
            "scope": "lt",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "m171",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "_id": null,
            "model": "m172",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "_id": null,
            "model": "somachine hvac-application",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "somachine hvac-application",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "schneider electric",
            "version": "2.0"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "BID",
            "id": "91778"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/h:schneider_electric:m171",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:schneider_electric:m172",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:schneider_electric:somachine_hvac_firmware",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "rgod",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2016-4529",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2016-4529",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 2.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2016-05142",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-93348",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 3.9,
                "id": "CVE-2016-4529",
                "impactScore": 3.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "Low",
                "baseScore": 7.3,
                "baseSeverity": "High",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "CVE-2016-4529",
                "impactScore": null,
                "integrityImpact": "Low",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-4529",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2016-4529",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "ZDI",
                "id": "CVE-2016-4529",
                "trust": 0.7,
                "value": "HIGH"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2016-05142",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201607-435",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-93348",
                "trust": 0.1,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2016-4529",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the SetDataIntf method of the AxEditGrid control.  The control has an untrusted pointer dereference vulnerability because it blindly calls an attacker-supplied memory address. A remote attacker can leverage this vulnerability to execute arbitrary code under the context of the process. Schneider Electric SoMachine HVAC Programming Software for M171 / M172 Controllers is a set of M171 / M172 controller-specific programming software from Schneider Electric (France). Failed attacks will likely cause denial-of-service conditions",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "BID",
            "id": "91778"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529"
          }
        ],
        "trust": 3.24
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-4529",
            "trust": 4.2
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-16-196-03",
            "trust": 2.9
          },
          {
            "db": "ZDI",
            "id": "ZDI-16-440",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "91778",
            "trust": 2.7
          },
          {
            "db": "SCHNEIDER",
            "id": "SEVD-2016-161-01",
            "trust": 2.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794",
            "trust": 0.8
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-3581",
            "trust": 0.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435",
            "trust": 0.7
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529"
          },
          {
            "db": "BID",
            "id": "91778"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          }
        ]
      },
      "id": "VAR-201607-0386",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348"
          }
        ],
        "trust": 1.7
      },
      "iot_taxonomy": {
        "_id": null,
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          }
        ]
      },
      "last_update_date": "2025-04-13T23:22:20.898000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "SEVD-2016-161-01",
            "trust": 0.8,
            "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2016-161-01"
          },
          {
            "title": "Schneider Electric has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-196-03"
          },
          {
            "title": "Patch for Schneider Electric SoMachine HVAC Programming Software for M171 / M172 Controllers Arbitrary Code Execution Vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/79425"
          },
          {
            "title": "Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=62977"
          },
          {
            "title": "CVE-2016-4529",
            "trust": 0.1,
            "url": "https://github.com/AlAIAL90/CVE-2016-4529 "
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.7,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-16-196-03"
          },
          {
            "trust": 2.4,
            "url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2016-161-01"
          },
          {
            "trust": 1.8,
            "url": "http://www.securityfocus.com/bid/91778"
          },
          {
            "trust": 1.8,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-440"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4529"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-4529"
          },
          {
            "trust": 0.3,
            "url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
          },
          {
            "trust": 0.3,
            "url": "http://www.zerodayinitiative.com/advisories/zdi-16-440/"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/alaial90/cve-2016-4529"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529"
          },
          {
            "db": "BID",
            "id": "91778"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4529"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-16-440",
            "ident": null
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-05142",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-93348",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4529",
            "ident": null
          },
          {
            "db": "BID",
            "id": "91778",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4529",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-07-20T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-440",
            "ident": null
          },
          {
            "date": "2016-07-21T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-05142",
            "ident": null
          },
          {
            "date": "2016-07-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-93348",
            "ident": null
          },
          {
            "date": "2016-07-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-4529",
            "ident": null
          },
          {
            "date": "2016-07-14T00:00:00",
            "db": "BID",
            "id": "91778",
            "ident": null
          },
          {
            "date": "2016-07-25T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003794",
            "ident": null
          },
          {
            "date": "2016-07-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-435",
            "ident": null
          },
          {
            "date": "2016-07-15T16:59:10.347000",
            "db": "NVD",
            "id": "CVE-2016-4529",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-07-20T00:00:00",
            "db": "ZDI",
            "id": "ZDI-16-440",
            "ident": null
          },
          {
            "date": "2016-07-21T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-05142",
            "ident": null
          },
          {
            "date": "2016-11-28T00:00:00",
            "db": "VULHUB",
            "id": "VHN-93348",
            "ident": null
          },
          {
            "date": "2021-08-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-4529",
            "ident": null
          },
          {
            "date": "2016-07-22T00:00:00",
            "db": "BID",
            "id": "91778",
            "ident": null
          },
          {
            "date": "2016-07-25T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003794",
            "ident": null
          },
          {
            "date": "2021-08-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-435",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-4529",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Schneider Electric M171/M172 Logic Controller for  SoMachine HVAC Programming of  ActiveX Vulnerability in arbitrary code execution in control",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003794"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-435"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201909-0043

    Vulnerability from variot - Updated: 2024-11-23 22:51

    A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious DLL library is loaded by the product. SoMachine HVAC Contains an unreliable search path vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Schneider Electric SoMachine HVAC is a set of programming software dedicated to Schneider Electric logic controllers by Schneider Electric in France.

    Schneider Electric SoMachine HVAC v2.4.1 and previous versions have code issue vulnerabilities. The vulnerability stems from the problem of improper design or implementation in the code development process of network systems or products. There is currently no detailed vulnerability details provided

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201909-0043",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "somachine hvac",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "2.4.1"
          },
          {
            "model": "somachine hvac programming software",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": "2.4.1"
          },
          {
            "model": "electric schneider electric somachine hvac",
            "scope": "lt",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "v2.4.1"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:schneider_electric:somachine_hvac_firmware",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          }
        ]
      },
      "cve": "CVE-2019-6826",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2019-6826",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CNVD-2020-28493",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2019-6826",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2019-6826",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2019-6826",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2019-6826",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2020-28493",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201909-820",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious DLL library is loaded by the product. SoMachine HVAC Contains an unreliable search path vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Schneider Electric SoMachine HVAC is a set of programming software dedicated to Schneider Electric logic controllers by Schneider Electric in France. \n\r\n\r\nSchneider Electric SoMachine HVAC v2.4.1 and previous versions have code issue vulnerabilities. The vulnerability stems from the problem of improper design or implementation in the code development process of network systems or products. There is currently no detailed vulnerability details provided",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          }
        ],
        "trust": 2.16
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2019-6826",
            "trust": 3.0
          },
          {
            "db": "SCHNEIDER",
            "id": "SEVD-2019-225-04",
            "trust": 2.2
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527",
            "trust": 0.8
          },
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820",
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "id": "VAR-201909-0043",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          }
        ],
        "trust": 1.6
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          }
        ]
      },
      "last_update_date": "2024-11-23T22:51:40.344000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "SEVD-2019-225-04",
            "trust": 0.8,
            "url": "https://www.schneider-electric.com/en/download/document/SEVD-2019-225-04/"
          },
          {
            "title": "Patch for Schneider Electric SoMachine HVAC code issue vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/217741"
          },
          {
            "title": "Schneider Electric SoMachine HVAC Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=98351"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-426",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.2,
            "url": "https://www.schneider-electric.com/en/download/document/sevd-2019-225-04/"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-6826"
          },
          {
            "trust": 0.8,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-6826"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2020-05-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "date": "2019-09-24T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "date": "2019-09-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "date": "2019-09-17T20:15:12.077000",
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2020-05-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2020-28493"
          },
          {
            "date": "2019-09-24T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          },
          {
            "date": "2022-03-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          },
          {
            "date": "2024-11-21T04:47:13.780000",
            "db": "NVD",
            "id": "CVE-2019-6826"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "SoMachine HVAC Vulnerabilities related to untrusted search paths",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2019-009527"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "code problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201909-820"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202301-2015

    Vulnerability from variot - Updated: 2024-08-14 15:00

    A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert – HVAC (Versions prior to V1.4.0). Schneider Electric SoMachine HVAC is a set of programming software dedicated to Schneider Electric logic controllers from Schneider Electric in France.

    Schneider Electric SoMachine HVAC has a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests, resulting in the leakage of sensitive information

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202301-2015",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "ecostruxure machine expert - hvac",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "1.4.0"
          },
          {
            "model": "somachine hvac",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "model": "ecostruxure machine expert - hvac",
            "scope": null,
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": null
          },
          {
            "model": "somachine - hvac",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "schneider electric",
            "version": "2.1.0"
          },
          {
            "model": "electric somachine hvac",
            "scope": "lt",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "2.1.0"
          },
          {
            "model": "electric ecostruxure machine expert hvac",
            "scope": "lt",
            "trust": 0.6,
            "vendor": "schneider",
            "version": "1.4.0"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "cve": "CVE-2022-2988",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 7.8,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2023-40179",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 3.9,
                "id": "CVE-2022-2988",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "cybersecurity@se.com",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.8,
                "id": "CVE-2022-2988",
                "impactScore": 1.4,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 7.5,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2022-2988",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2022-2988",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "cybersecurity@se.com",
                "id": "CVE-2022-2988",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2022-2988",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2023-40179",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202301-2351",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert \u2013 HVAC (Versions prior to V1.4.0). Schneider Electric SoMachine HVAC is a set of programming software dedicated to Schneider Electric logic controllers from Schneider Electric in France. \n\r\n\r\nSchneider Electric SoMachine HVAC has a buffer overflow vulnerability, which can be exploited by remote attackers to submit special requests, resulting in the leakage of sensitive information",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-2988"
          }
        ],
        "trust": 2.25
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2022-2988",
            "trust": 3.9
          },
          {
            "db": "SCHNEIDER",
            "id": "SEVD-2023-010-01",
            "trust": 1.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082",
            "trust": 0.8
          },
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-2988",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-2988"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "id": "VAR-202301-2015",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          }
        ],
        "trust": 1.6
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          }
        ]
      },
      "last_update_date": "2024-08-14T15:00:33.806000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "SEVD-2023-010-01",
            "trust": 0.8,
            "url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2023-010-01_EcoStruxure_Machine_Expert_Machine_HVAC_Security_Notification.pdf"
          },
          {
            "title": "Patch for Schneider Electric SoMachine HVAC Buffer Overflow Vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/428686"
          },
          {
            "title": "Schneider Electric SoMachine HVAC Buffer error vulnerability fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=223601"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.0
          },
          {
            "problemtype": "Out-of-bounds writing (CWE-787) [ others ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "https://download.schneider-electric.com/files?p_doc_ref=sevd-2023-010-01\u0026p_endoctype=security+and+safety+notice\u0026p_file_name=sevd-2023-010-01_ecostruxure_machine_expert_machine_hvac_security_notification.pdf"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-2988"
          },
          {
            "trust": 0.6,
            "url": "https://cxsecurity.com/cveshow/cve-2022-2988/"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/787.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-2988"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-2988"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-05-18T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "date": "2023-01-30T00:00:00",
            "db": "VULMON",
            "id": "CVE-2022-2988"
          },
          {
            "date": "2023-08-31T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "date": "2023-01-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "date": "2023-01-30T11:15:08.807000",
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2023-05-23T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2023-40179"
          },
          {
            "date": "2023-02-03T00:00:00",
            "db": "VULMON",
            "id": "CVE-2022-2988"
          },
          {
            "date": "2023-08-31T04:36:00",
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          },
          {
            "date": "2023-02-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          },
          {
            "date": "2023-02-07T17:34:53.647000",
            "db": "NVD",
            "id": "CVE-2022-2988"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "SoMachine\u00a0HVAC\u00a0 and \u00a0EcoStruxure\u00a0Machine\u00a0Expert\u00a0-\u00a0HVAC\u00a0 Out-of-bounds write vulnerability in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2023-003082"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202301-2351"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2022-2988 (GCVE-0-2022-2988)

    Vulnerability from nvd – Published: 2023-01-30 00:00 – Updated: 2025-02-05 20:08
    VLAI
    Summary
    A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert – HVAC (Versions prior to V1.4.0)
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T00:53:00.478Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2023-010-01_EcoStruxure_Machine_Expert_Machine_HVAC_Security_Notification.pdf"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-2988",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-05T19:50:42.632868Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-05T20:08:49.920Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SoMachine HVAC",
              "vendor": "Schneider Electric",
              "versions": [
                {
                  "lessThan": "V2.1.0",
                  "status": "affected",
                  "version": "All",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "EcoStruxure Machine Expert \u2013 HVAC",
              "vendor": "Schneider Electric",
              "versions": [
                {
                  "lessThan": "V1.4.0",
                  "status": "affected",
                  "version": "All",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert \u2013 HVAC (Versions prior to V1.4.0)"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-03T00:00:00.000Z",
            "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
            "shortName": "schneider"
          },
          "references": [
            {
              "url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2023-010-01_EcoStruxure_Machine_Expert_Machine_HVAC_Security_Notification.pdf"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
        "assignerShortName": "schneider",
        "cveId": "CVE-2022-2988",
        "datePublished": "2023-01-30T00:00:00.000Z",
        "dateReserved": "2022-08-25T00:00:00.000Z",
        "dateUpdated": "2025-02-05T20:08:49.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-2988 (GCVE-0-2022-2988)

    Vulnerability from cvelistv5 – Published: 2023-01-30 00:00 – Updated: 2025-02-05 20:08
    VLAI
    Summary
    A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert – HVAC (Versions prior to V1.4.0)
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T00:53:00.478Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2023-010-01_EcoStruxure_Machine_Expert_Machine_HVAC_Security_Notification.pdf"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-2988",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-05T19:50:42.632868Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-05T20:08:49.920Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SoMachine HVAC",
              "vendor": "Schneider Electric",
              "versions": [
                {
                  "lessThan": "V2.1.0",
                  "status": "affected",
                  "version": "All",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "EcoStruxure Machine Expert \u2013 HVAC",
              "vendor": "Schneider Electric",
              "versions": [
                {
                  "lessThan": "V1.4.0",
                  "status": "affected",
                  "version": "All",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. Affected Products: SoMachine HVAC (Versions prior to V2.1.0), EcoStruxure Machine Expert \u2013 HVAC (Versions prior to V1.4.0)"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-03T00:00:00.000Z",
            "orgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
            "shortName": "schneider"
          },
          "references": [
            {
              "url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-010-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2023-010-01_EcoStruxure_Machine_Expert_Machine_HVAC_Security_Notification.pdf"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "076d1eb6-cfab-4401-b34d-6dfc2a413bdb",
        "assignerShortName": "schneider",
        "cveId": "CVE-2022-2988",
        "datePublished": "2023-01-30T00:00:00.000Z",
        "dateReserved": "2022-08-25T00:00:00.000Z",
        "dateUpdated": "2025-02-05T20:08:49.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }